LinkedIn hack: Citrix warns of GoToMyPC password attack

According to the company, the “recent incident” was a password re-use attack. The hackers used the usernames and passwords leaked on other websites to access the GoToMyPC user accounts.

TOI Tech

June 22, 2016, 09:22 IST

Citrix is the latest victim of LinkedIn's massive hack. This time the leadked password dump has allegedly affected Citrix's GoToMyPC service. The service lets users control their PC systems remotely from a number of connected devices.

The server-based computing giant Citrix has acknowledged the data leak on it website. “Citrix takes the safety and security of its customers very seriously, and is aware of the password attack on GoToMyPC. Once Citrix determined the nature of the attack, it took immediate action to protect customers,” says the company in a statement on its page.

According to the company, the “recent incident” was a password re-use attack. The hackers used the usernames and passwords leaked on other websites to access the GoToMyPC user accounts.

As a fix, the company has asked its users to reset their passwords and enable two-step verification process. “Citrix encourages customers to visit the GoToMyPC status page to learn about enabling two-step verification, and to use strong passwords in order to keep accounts as safe as possible. Further, there is no indication of compromise to any other Citrix product line.”

It is not sure how many PCs have been hacked remotely by cybercriminals. It is also possible that hackers could’ve accessed any PC and breached other sites as wellif the ID and passwords were stored in a browser.

Back in 2012, over 100 million LinkedIn passwords were hacked, which recently also led to Facebook CEO Mark Zuckerberg's other social accounts getting compromised.

Earlier this week it was also reported that around 32 million Twitter accounts have been hacked and leaked by a hacker named 'Tessa88@exploit.im'. The Twitter co-founder Evan Williams's account was also hacked for brief period. The two hacking incidents, however, are not related.